b4b9bfe73cd287945c857b55dd3d0294 | Triage

Sharing

Copy URL Twitter E-mail

General

Target

b4b9bfe73cd287945c857b55dd3d0294
Size

172KB
MD5

b4b9bfe73cd287945c857b55dd3d0294
SHA1

61e90d732cb93b57fb6a0d452b6f72f9fd063a84
SHA256

344024986d171806077e1ec48122460cd3cf35d62c89702afaf09f6913f1430f
SHA512

921c9745dc2291461c2d738a011e51fa3047bb9b7b6e7f23b9c2a6657fa4dd416ec9b2016b8c0282276a8e1c8ddac03302be6341634ddd19a5d3c564fb9634ad
SSDEEP

3072:a7LCZkXKvrjtBJE0TkCh4TsVpanoGw8NplEZebAyFJEBFm5:cLVSH9QVASnHxpmZeUKEBFm

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
b4b9bfe73cd287945c857b55dd3d0294

Files

b4b9bfe73cd287945c857b55dd3d0294
.exe windows:4 windows x86 arch:x86

5a85f477c9d4f2a496fc9f2d516c25c6

Headers

File Characteristics

IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_LINE_NUMS_STRIPPED
IMAGE_FILE_32BIT_MACHINE

Imports

gdiplus

GdipCreateHBITMAPFromBitmap
GdipCloneImage

kernel32

CloseHandle
SetFilePointer
AddAtomW
HeapAlloc
GetLastError
GetStringTypeW
GetCurrentThreadId
FlushFileBuffers
GetCurrentProcess
InterlockedDecrement
FlushInstructionCache
InitializeCriticalSection
GetStringTypeA
EnumResourceNamesA
GetSystemTimeAsFileTime
GetCurrentProcessId
SetStdHandle
IsBadCodePtr
LCMapStringA
RegisterWaitForSingleObject
EnterCriticalSection
LCMapStringW
RaiseException
LeaveCriticalSection
LoadLibraryExA
InterlockedIncrement
GetModuleHandleA
DeleteCriticalSection
IsBadReadPtr
SizeofResource

gdi32

CreateFontIndirectA

shell32

Shell_NotifyIconA

setupapi

CM_Get_Depth
SetupDiGetDeviceRegistryPropertyW
CMP_WaitNoPendingInstallEvents
CM_Get_DevNode_Status

Sections

.text
Size: 94KB - Virtual size: 93KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 1KB - Virtual size: 1KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 74KB - Virtual size: 74KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.reloc
Size: 1024B - Virtual size: 124KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ